Winners Most Impactful Hack Pentest contest

During a recent Pentest event ‘Hâck The Hague 2019’ at the Municipality of The Hague, Team Onvio won the 1st price ‘Most Impactful Hack’ On 30 September, 79 Ethical Hackers sat down in the Atrium of City Hall to Pentest the IT-systems of the Municipality of The Hague and several of its suppliers. The event…

Lees meer

Pentest reveals vulnerabilities in WordPress plugin Ninja Forms <= 3.0.22

During a recent Pentest for one of our clients, we discovered Path Traversal and Unrestricted File Upload vulnerabilities in the WordPress plugin Ninja Forms with its File Upload extension (v3.0.22) enabled. This eventually allows an unauthenticated attacker to traverse the file system to access files and execute code via the includes/fields/upload.php (aka upload/submit page) name…

Lees meer